Tenable Research revealed "LeakyLooker," a set of nine novel cross-tenant vulnerabilities in Google Looker Studio. These flaws could have let attackers exfiltrate or modify data across Google services ...

Cisco has handed security teams one of the largest ever patching workloads affecting its firewall products, including fixes ...

Security startup CodeWall disclosed this week that its autonomous AI agent breached McKinsey's internal AI platform Lilli in ...

UK firms banned or considered banning ChatGPT. What the NCSC actually says about LLMs, sensitive data, prompt injection, and ...

A practical MCP security benchmark for 2026: scoring model, risk map, and a 90-day hardening plan to prevent prompt injection, secret leakage, and permission abuse.

Ally was carrying an SQL injection flaw that allowed data exfiltration.

Nine bugs were found in Google's Looker Studio which could have allowed outside access.

The Hacker News is the top cybersecurity news platform, delivering real-time updates, threat intelligence, data breach ...

Microsoft has confirmed that a hacker who successfully exploits a zero-day SQL vulnerability could gain system administrator privileges. Here’s how to fix it.

Deepfakes and injection attacks are targeting identity verification moments, from onboarding to account recovery. Incode explains why enterprises must validate the full session—media, device integrity ...

AI coworkers can boost productivity, but hidden instructions called prompt injection can manipulate them. Learn how to set boundaries, protect data, and manage AI.

Whether you are looking for an LLM with more safety guardrails or one completely without them, someone has probably built it.